4295346c42b5de125f41f613feb6f8f6_JaffaCakes118

General

Target

4295346c42b5de125f41f613feb6f8f6_JaffaCakes118
Size

10KB
MD5

4295346c42b5de125f41f613feb6f8f6
SHA1

54bfa6cfaa6ca47b6ef7912729a31bb02583427d
SHA256

b63fc9a1cd11603ecebdf69930796f50c8687e2341d9ab73ac7f5164429968e2
SHA512

369fb5b046db74bc3a04474469dab90197c508647fdfff7b68826be4eede3ce65e53bb86aa9bf99097ca074cf392ddf2833a6c91695e31a00c9af88aa7aa6016
SSDEEP

192:Tw8RKkKvOOWLUlLn1FvAxl5PhzWUatdiDcojGayz4FBtogfJZf8VUZiU6kRJM:sfvOO17AL5PhzxRo49XbhfJtZiU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4295346c42b5de125f41f613feb6f8f6_JaffaCakes118

Files

4295346c42b5de125f41f613feb6f8f6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e72daa5ef8327a664f55cd0f95d34c53

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateToolhelp32Snapshot
DeleteFileW
DisableThreadLibraryCalls
ExitProcess
GetCommConfig
GetCommTimeouts
GetCompressedFileSizeA
GetPrivateProfileSectionW
GetPrivateProfileStringA
GetProcAddress
GetProcessVersion
GetSystemDefaultLangID
Heap32ListFirst
Heap32ListNext
HeapReAlloc
IsDBCSLeadByte
IsSystemResumeAutomatic
OpenFile
ReadConsoleOutputCharacterW
SetCommState
SetConsoleActiveScreenBuffer
TlsSetValue
WriteConsoleW
lstrcat

user32

AppendMenuA
BroadcastSystemMessageW
CharNextExA
CharPrevExA
CreateAcceleratorTableA
CreateIcon
CreateMDIWindowA
DeleteMenu
DestroyWindow
EnumWindowStationsW
GetDlgItemTextA
GetQueueStatus
GetWindowWord
IsDialogMessageA
LookupIconIdFromDirectory
ModifyMenuA
SendInput
SetLastErrorEx
SetWindowWord
SwitchDesktop
UnpackDDElParam
UnregisterDeviceNotification
VkKeyScanExW
WindowFromPoint

gdi32

AnimatePalette
CancelDC
CheckColorsInGamut
CreateDCW
CreateFontW
CreateMetaFileW
DeleteMetaFile
EndDoc
GdiComment
GetColorSpace
GetDIBColorTable
GetDeviceCaps
GetGlyphOutlineW
GetKerningPairsA
GetRandomRgn
GetTextCharacterExtra
GetTextExtentExPointW
GetTextMetricsA
OffsetRgn
PathToRegion
PlgBlt
PtVisible
RectInRegion
SelectClipRgn
SetMapMode
SetMapperFlags
SetPolyFillMode
SetTextAlign

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e72daa5ef8327a664f55cd0f95d34c53

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 8KB - Virtual size: 20KB

.rdata Size: - Virtual size: 8KB

.rsrc Size: - Virtual size: 4KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 20KB

.rdata
Size: - Virtual size: 8KB

.rsrc
Size: - Virtual size: 4KB